$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197622.roa File: AS197622.roa (raw, json) Hash identifier: 9PQ05bgMlQZckAu4JuCgahUcFp/A2THn6iL3uLieoXE= Subject key identifier: 68:81:AE:E5:7D:D2:B8:E5:DB:75:F4:ED:3A:63:C8:A0:35:67:FC:9A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 233B47AF57B039F0A849B10773F8231734CB8241 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197622.roa Signing time: Fri 04 Jul 2025 06:52:59 +0000 ROA not before: Fri 04 Jul 2025 06:47:59 +0000 ROA not after: Fri 03 Jul 2026 06:52:59 +0000 asID: 197622 IP address blocks: 2a05:dfc1:7500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:3b:47:af:57:b0:39:f0:a8:49:b1:07:73:f8:23:17:34:cb:82:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:59 2025 GMT Not After : Jul 3 06:52:59 2026 GMT Subject: CN=6881AEE57DD2B8E5DB75F4ED3A63C8A03567FC9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:be:59:16:52:81:35:31:6a:1d:d9:55:21: b6:fc:fe:4a:93:bd:b9:ed:ae:7e:f1:f0:16:ca:5b: 6b:72:f6:77:db:1c:37:21:f9:76:fc:a6:3a:68:c0: 26:dc:3c:e2:cf:55:51:89:ca:d8:82:e7:a2:70:7a: 47:b3:a6:07:1a:ff:29:8d:06:97:43:3a:74:74:a4: 91:20:df:83:34:13:5c:c8:88:d4:e7:5c:f2:fe:ba: 15:75:86:c7:e5:f3:08:f7:95:b4:ca:ec:5b:04:1b: d6:5c:3f:32:e7:b8:40:7a:61:f6:1c:11:13:4f:b6: de:e1:f3:f2:f7:b5:27:ff:53:8d:68:c0:5c:3d:b6: 50:49:a8:99:1b:6b:ea:16:b4:1d:a7:0a:62:ff:51: 55:9f:4d:e4:fe:c6:be:59:74:25:36:a1:30:19:55: 85:eb:ae:90:ae:5f:80:94:48:3e:b8:15:46:ec:31: 00:90:aa:5f:9b:60:ff:f0:4b:89:d0:a1:cb:2a:7b: 65:f7:45:5d:9c:6f:15:b5:2d:b8:56:a8:c8:ec:d0: 96:6f:bd:80:18:7a:36:c0:db:2f:25:3d:d3:0b:f8: b3:7f:c0:1a:5c:e0:21:58:1a:d6:72:62:f4:4a:b2: fd:16:71:2c:cb:5a:e4:3c:e2:9e:d7:5c:17:a1:e1: bf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:81:AE:E5:7D:D2:B8:E5:DB:75:F4:ED:3A:63:C8:A0:35:67:FC:9A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7500::/40 Signature Algorithm: sha256WithRSAEncryption eb:eb:70:06:55:f7:dd:9c:21:2f:d0:78:91:a0:c1:5f:62:50: aa:2f:f8:21:30:73:26:7b:7f:a1:3e:e0:15:0b:f5:a7:5e:c7: 4c:22:02:1b:21:79:ad:5b:e4:dc:21:1e:11:d6:f2:45:72:d9: 71:19:f5:7a:ec:08:d4:26:d0:7f:f5:41:d5:27:c8:d4:8d:6e: 80:a8:29:df:8d:d0:6e:8b:32:1e:2b:83:5e:f3:c4:9d:68:77: 59:10:b4:7a:e5:23:c6:f5:02:c1:06:22:69:eb:4c:09:24:cd: c2:b0:5d:7e:e6:64:bb:c1:18:f2:ad:1b:f5:3e:b0:50:08:69: f9:a3:9c:93:80:3e:60:58:b5:38:94:63:aa:86:a5:ea:90:ff: e6:8c:ce:30:66:c3:c1:9a:fe:81:6f:15:e7:61:be:51:75:89: b9:41:cf:89:6f:c1:d2:92:44:2b:d4:06:cb:0a:7e:d2:0a:fd: a3:45:ce:9b:08:4a:b6:32:e9:29:4c:6f:61:eb:e2:62:4b:bf: a9:fc:54:8a:30:c5:d0:bc:ba:10:8d:3b:cf:7d:1f:e9:84:ed: 69:ac:52:9e:09:f9:c8:a2:58:1e:00:30:eb:1d:32:70:56:86: d3:75:a0:c1:53:9b:a3:b1:c2:54:3c:cc:b5:ba:9b:db:c3:34: 78:6c:d6:dd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIztHr1ewOfCoSbEHc/gjFzTLgkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTlaFw0yNjA3MDMwNjUyNTlaMDMxMTAvBgNV BAMTKDY4ODFBRUU1N0REMkI4RTVEQjc1RjRFRDNBNjNDOEEwMzU2N0ZDOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnEr5ZFlKBNTFqHdlVIbb8/kqT vbntrn7x8BbKW2ty9nfbHDch+Xb8pjpowCbcPOLPVVGJytiC56Jwekezpgca/ymN BpdDOnR0pJEg34M0E1zIiNTnXPL+uhV1hsfl8wj3lbTK7FsEG9ZcPzLnuEB6YfYc ERNPtt7h8/L3tSf/U41owFw9tlBJqJkba+oWtB2nCmL/UVWfTeT+xr5ZdCU2oTAZ VYXrrpCuX4CUSD64FUbsMQCQql+bYP/wS4nQocsqe2X3RV2cbxW1LbhWqMjs0JZv vYAYejbA2y8lPdML+LN/wBpc4CFYGtZyYvRKsv0WcSzLWuQ84p7XXBeh4b9RAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaIGu5X3SuOXbdfTtOmPIoDVn/JowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NjIyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXUwDQYJKoZIhvcNAQELBQADggEBAOvr cAZV992cIS/QeJGgwV9iUKov+CEwcyZ7f6E+4BUL9adex0wiAhshea1b5NwhHhHW 8kVy2XEZ9XrsCNQm0H/1QdUnyNSNboCoKd+N0G6LMh4rg17zxJ1od1kQtHrlI8b1 AsEGImnrTAkkzcKwXX7mZLvBGPKtG/U+sFAIafmjnJOAPmBYtTiUY6qGpeqQ/+aM zjBmw8Ga/oFvFedhvlF1iblBz4lvwdKSRCvUBssKftIK/aNFzpsISrYy6SlMb2Hr 4mJLv6n8VIowxdC8uhCNO899H+mE7WmsUp4J+ciiWB4AMOsdMnBWhtN1oMFTm6Ox wlQ8zLW6m9vDNHhs1t0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:57 2025 by rpki-client